GHSA-5JMJ-H7XM-6Q6V vulnerabilities

Vulnerabilities for packages: confluent-common-docker, geoserver, s3proxy, trino, thingsboard, s3proxy-fips...

CVE-2026-54515 vulnerabilities

Vulnerabilities for packages: confluent-common-docker, trino, thingsboard...

GHSA-5JMJ-H7XM-6Q6V vulnerabilities

Vulnerabilities for packages: confluent-common-docker, trino, thingsboard...

CLEANSTART-2026-RD06185 Security fixes for CVE-2024-29371, CVE-2026-1225, CVE-2026-24281, CVE-2026-24308, CVE-2026-42577, CVE-2026-42583, ghsa-25qh-j22f-pwp8, ghsa-3677-xxcr-wjqv, ghsa-72hv-8253-57qq, ghsa-7xrh-hqfc-g7qr, ghsa-crhr-qqj8-rpxc, ghsa-mj4r-2hfc-f8p6, ghsa-qqpg-mvqg-649v, ghsa-rwm7-x88c-3g2p applied in versions: 7.6.9-r2, 7.6.9-r3, 7.6.9-r4, 7.6.9-r5

Multiple security vulnerabilities affect the confluent-common-docker package. These issues are resolved in later releases. See references for individual vulnerability details...

CVE-2025-47906 vulnerabilities

Vulnerabilities for packages: newrelic-fluent-bit-output, kube-vip-cloud-provider, nats, mongodb-kubernetes-operator, bank-vaults, gitlab-runner, php-fpmexporter, rancher-machine, ctop, git-lfs, lvm-driver, checksec, docker-credential-ecr-login, newrelic-nri-statsd, dagdotdev, gitsign,...

GHSA-GWRF-JF3H-W649 vulnerabilities

Vulnerabilities for packages: lvm-driver, nvidia-nsight-compute-13.1, karpenter, knative-serving, prometheus-adapter, kube-vip-cloud-provider, container-object-storage-interface, cloud-provider-aws-fips, newrelic-fluent-bit-output, mongodb-kubernetes-operator, k8sgpt-operator,...

CVE-2025-52999 vulnerabilities

Vulnerabilities for packages: tez, confluent-common-docker, celeborn, cassandra, cassandra-reaper, gradle-stage0, scala...

GHSA-H46C-H94J-95F3 vulnerabilities

Vulnerabilities for packages: tez, confluent-common-docker, celeborn, cassandra, cassandra-reaper, gradle-stage0, scala...

GHSA-WXR5-93PH-8WR9 vulnerabilities

Vulnerabilities for packages: tez, confluent-common-docker, celeborn, sonarqube, strimzi-kafka-operator, trino, apicurio-registry, opensearch, akhq, spdx-tools-java, wildfly, cassandra-reaper, jenkins, apache-activemq-artemis, kafka, jenkins-plugin-manager, druid, apache-nifi...

CVE-2025-48734 vulnerabilities

Vulnerabilities for packages: confluent-kafka-jre-bcfips, sonarqube, druid, apache-activemq-artemis, camunda-zeebe, opensearch, strimzi-kafka-operator, kafka, hadoop-client-modules, apache-nifi, jenkins-plugin-manager, confluent-common-docker, trino, apicurio-registry, wildfly, jenkins, akhq,...

GHSA-7WRW-R4P8-38RX vulnerabilities

Vulnerabilities for packages: rabbitmq-messaging-topology-operator, wgcf, bank-vaults, wireguard-go, flannel, cri-tools, kubecolor, kind, mage, ip-masq-agent, opa-envoy, stakater-reloader, cortex, linkerd2-proxy-init, xcaddy, helm-push, render-template, thanos, regclient, wuzz, overmind,...